4363463463464363463463463[.]exe (1)[.]zip | Triage

Sharing

General

Target

4363463463464363463463463.exe (1).zip
Size

4KB
MD5

d4a31cfacebb15004dfebb6847c555a0
SHA1

e2f4fe84fb6e4e5a1d6eb8cf14f5f8c388025bd3
SHA256

48cdd34c1d5194805bb63e4d865ff8ce52d2c7a8aa2e0fbb24b8b73c00a28b6b
SHA512

75daf512110eff1a9b48f69bafb37141626025e02ff5a5a540939e6f241f3d6912ae2affda4bc78698e4b36bd05c29b20a9248ed41dd5f53fcbc5ac18105d62b
SSDEEP

96:9iJV6nM5MJTwyjit+AWBSj3bvhcKRBo86BDK7KK1wyE2gDB:9iJV6nC2TwaS+5BSj3bJNDX6BD+wyO1

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

Processes:

resource
unpack001/4363463463464363463463463.exe.bin

Files

4363463463464363463463463.exe (1).zip
.zip

Password: infected
4363463463464363463463463.exe.bin
.exe windows:4 windows x86 arch:x86

Password: infected

f34d5f2d4577ed6d9ceec516c1f5a744

Headers

DLL Characteristics

IMAGE_DLLCHARACTERISTICS_HIGH_ENTROPY_VA
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LARGE_ADDRESS_AWARE

Imports

mscoree

_CorExeMain

Sections

.text
Size: 5KB - Virtual size: 5KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rsrc
Size: 4KB - Virtual size: 3KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.reloc
Size: 512B - Virtual size: 12B

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ